IT Security Management Session


Monday, 13 February, 2017 - 09:00 to Thursday, 16 February, 2017 - 16:00
UIT

Université Internationale de Tunis

A three-day intensive course on IT Security Management (3 ECTS) will start on 13 February 2017 at the International University of Tunis and will be delivered by Professor Sachar PAULUS; Head of IT Security Department at the University of Applied Sciences of Mannheim - Hochschule Mannheim.

 

Training in IT Security Management makes it possible to acquire knowledge in the following areas:

•Preparation of security investigations

•Safety analysis and importance of countermeasures

•Risk assessment

•Developing understanding of the importance of safety in the decision-making process of entrepreneurs

•Evaluation of the security organization in enterprises

•Developing and successfully presenting security measures for the decision-makers

The course will be held according to the schedule below and will end with a debate.

 

Programme: 
Feb13
from 09:00 to 16:00
Monday

09:00 - 12:00

- Welcome

- What is Security?

- What is Security Management?

- Security Protection Goals

- Risks and measures

- Preventive and reactive measures

- The security management process

 

- Introduction to the exercise framework

- Identification of use cases by students (group work)

 

13:00 - 16:00

- Risks: probability, impact

- Risk management

- Risk strategy

- Identification of risks

- Risk map

 

 

- Use cases: identifying and classifying risks, creating a risk map (group work)

Feb14
from 09:00 to 16:00
Tuesday

09:00 - 12:00

- Identifying measures to reduce risk

- Different types of measures

- Evaluating measures

- Return on Security Invest

- Security Portfolio Management

 

- Use cases: identifying measures, computing ROSI, developing a security portfolio (group work)

 

13:00 - 16:00

- Incidents and crises

- point of no return

- incident management

- crisis preparedness

- switching to crisis mode

 

 

- Use cases: developing crisis preparedness structures and measures (group work)

Feb15
from 09:00 to 16:00
Wednesday

09:00 - 12:00

- Security Policy

- Security Organization Types

- Criteria for making an organizational choice

- Profile of a Chief Security Officer

 

- Use cases: Developing a security policy and a security organization, write a job offering for a CSO (group work)

 

13:00 - 16:00

- Security Management Systems

- ISO 27000 series

- How to prepare for a certification

- IT-Systems supporting the program

 

 

- Use case: Preparation of the role play that serves as assignment (group work)

Feb16
from 09:00 to 16:00
Thursday

09:00 - 12:00

 - Role play: how to convince management to invest into security measures (group work) .Assessment.


13:00 - 16:00

 - Debate